[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] CGIWrap Error?
- Subject: Re: [cobalt-users] CGIWrap Error?
- From: baltimoremd@xxxxxxxxxxxxxxx
- Date: Tue Jan 30 06:39:01 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
On Tue, 30 Jan 2001, H.P. Stroebel wrote:
> baltimoremd@xxxxxxxxxxxxxxx schrieb:
>
> > <FORM METHOD="POST" action="http://www.yourdomain.com/cgi-bin/formmail.pl";>
> > <input type="hidden" name="recipient"
> > <input type=hidden name="print_config" value="Email,Realname">
>
> i don`t like that, as one could easily alter this values by simply
> changing the html, if the program doesn`t verify it.
I suppose so, never had it happen to me...but there is always a first.
>
> > @referers = ('yourdomian.com,'xxx.xxx.xxx.xx');
>
> using wget, curl or a little perl script for example, even the referer
> can be changed.
Right...but haven't had the problem.
>
> would alienform be an alternative ? template driven, and does not
> contain values to change (the path to the templates, but it will stop
> working if it doesn`t find them; so little chance by altering html)
Not sure...if you write one, I'll be happy to test it.
thom
././././././././././././././././././././././././././././././././././././././
baltimoremd@xxxxxxxxxxxxxxx Thom LaCosta K3HRN Webmaster
http://www.baltimoremd.com/ Baltimore's Home Page
http://www.baltimorehon.com/ Home of the Baltimore Lexicon
http://www.zerobeat.net Home of The QRP Web Ring
and Drake Mail List Pages